Analysis

  • max time kernel
    121s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    13/01/2024, 08:25

General

  • Target

    58735e974ac8e58e3417ace6e7b8a61a.pdf

  • Size

    45KB

  • MD5

    58735e974ac8e58e3417ace6e7b8a61a

  • SHA1

    d1ddcdb8ea4739af0dfc2db8430c2f75b20f306a

  • SHA256

    f12a767604a69398e9fdbb4651401ad65719fcfcb8db32669ce57d977df5e615

  • SHA512

    c86daffe643d12f4a884ee7755d931d6fe35fdeebd9f6ddd40066bd19a25bdcf15ffab5e031341aaf674fe07a7621572118d46742e61bec8af68ccedea8a6b62

  • SSDEEP

    768:4LQ+9c/ZQtx5toCNQiu1yCNNDfduIzz57XRZfYUy4nRmHw9Al0CEbLvGqSJ:RixlN5Sfdu0z57zAUyeiFl0CwLvUJ

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\58735e974ac8e58e3417ace6e7b8a61a.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2028

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents

    Filesize

    3KB

    MD5

    2c768fe0683969e92346b62e21963883

    SHA1

    d3a9866a9d6a2acc725917446c1f3c45dc7f9817

    SHA256

    e80a54a01517341ebd4013e8dd8252d8e4d23f6bd5d70af8216b02b36733e346

    SHA512

    5f2883868a732c5e64e99048572dd1b6879fee490d033bd1a0285b0e4182754fdc0599203fb9ce95c0558f3ef69263fbefebfc9f417004ef7f3425340f27c7c5